chroot: any security benefits from a full chroot?
Martin Schröder
ms at artcom-gmbh.de
Mon Sep 20 12:10:35 UTC 2004
On 2004-09-20 13:50:43 +0200, Alexander Dalloz wrote:
> Am Mo, den 20.09.2004 schrieb Javier Sanchez Llera um 13:33:
>
> > What do you mean with full ???? I dont get the difference .. .-O
> > Im using -t option, on chroot env cread with all the libs needed..
>
> Can it be that you do not know the difference between the bind chroot
> function and the chroot (or jail) of the OS, indepenent from application
> to run inside it? Or beeing paranoid by combining both? ;)
We'll not combine them. :-)
I presume that bind uses chroot(2) for it's child. So how much
security do I gain if I use chroot(1)?
Best regards
Martin
--
Martin Schröder, ms at artcom-gmbh.de
ArtCom GmbH, Lise-Meitner-Str 5, 28359 Bremen, Germany
Voice +49 421 20419-44 / Fax +49 421 20419-10
http://www.artcom-gmbh.de
More information about the bind-users
mailing list